Tag: malware name

It is a computer worm that infected over ten million Windows personal computers. It started spreading as an email message with the subject line "ILOVEYOU"

WannaMine is a sophisticated Monero crypto-mining worm that spreads the EternalBlue exploit. WannaMine implements a spreading mechanism.

Vidar is an infostealer that targets Windows operating systems. First detected at the end of 2018, it is designed to steal passwords.

SparrowDoor is an advanced backdoor used by the FamousSparrow APT group to spy on hotels, governments and more. It was spotted exploiting the Microsoft.

Rubyminer was first seen in the wild in January 2018 and targets both Windows and Linux servers. Rubyminer seeks vulnerable web servers.

Ramnit is a modular banking Trojan. Ramnit steals web session information, giving its operators the ability to steal account credentials.

RedLine Stealer is a trending Infostealer and was first observed in March 2020. Sold as a MaaS, and often distributed via malicious email attachments.

Remcos is a RAT that first appeared in the wild in 2016. Remcos distributes itself through malicious Microsoft Office documents.

SunBurst is the backdoor that was planted within SolarWinds’s Orion IT management software during 2020, as part of the infamous supply chain attack.

Discovered in 2020, Kinsing is a Golang cryptominer with a rootkit component. Originally designed to exploit Linux systems.